Communication between Database Server and database Client without Encryption:

On the client machine, start the Sqlplus client.

Connect to the remote database and make a simple select query.

Monitor the network packet on the Database Server Machine using the Wireshark Monitoring tool.

I have captured the Network packet :

Network-Packet-Without-Encryption.pcap

We can see from the below screen shot of the network packet that the username used for making connection, the select query used and the result data received from the Database can be seen in clear text.

Communication between Database Server and Database Client with Encryption Enabled.

In order to enable the Encryption between the Database Server and Database Client we need to make some configurations on both the server and the client end.

Configuration required on the Client Side:

We need to configure the listener service on the Client side. If this is already done then we can directly move on to the configuration of the encryption settings given below.

Invoke Net Manager.

Expand Local. Select Service Naming and click the green + (plus) sign to create a new service name.

In the Net Service Name field, enter a name for the net service name you wish to create. In this example, the name “demo_db_svc” is used. Click Next

Select “TCP/IP (Internet Protocol)” and click next.

Enter the host name or the IP address of the server for your database. Accept the default port number of 1521 or enter the port number that is appropriate for your database listener. Click Next.

Click Test to test your connection configuration. Note: By default the connection is tested using the username of SCOTT with a password of TIGER

You can change the user for the connection test by clicking Change Login.